#Breach

A U.K. fishing retailer’s site has been hijacked and redirected to Pornhub.

The cyberattacker attempted to extort the company after socially engineering a customer service employee to gain access to email addresses and more.

Researchers discovered 14 vulnerabilities in the ‘Swiss Army Knife’ of the embedded OS used in many OT and IoT environments. They allow RCE, denial of service and data leaks.

Invest and practice: Grant Oviatt, director of incident-response engagements at Red Canary, lays out the key building blocks for effective IR.

A fake Steam pop-up prompts users to ‘link’ Discord account for free Nitro subs.

The bug (CVE-2021-43267) exists in a TIPC message type that allows Linux nodes to send cryptographic keys to each other.

Defending against ransomware will take a move to zero-trust, argues Daniel Spicer, CSO, Ivanti.

The kid was busted after abusing Google Ads to lure users to his fake gift card site.

Out of 92 security vulnerabilities, 66 are rated critical in severity, mostly allowing code execution. The most severe can lead to information disclosure.

A researcher was able to crack 70 percent of the gathered hashes in an experiment in a residential neighborhood.